Adding AD groups to sharepoint Windows & FBA applications

1â¢ I have an "Intranet" web application http://abc.com created under claims mode with Windows authentication. This Web app uses users and groups from Active Directory.

2â¢ Say I have 2 security groups AD_Viewers and AD_Members in Active directory. And 2 sharepoint groups "SPViewers" and "SPMembers".

3â¢ I have assigned permission to the site as by adding security groups into respective sharepoint groups, AD_Viewers->SPViewers and AD_Members->SPMembers. Now AD users can login directly and access sites based on their permission.

4â¢ Now my requirement is, Same AD users should be able to login to the same application via internet(when not in domain network) with same permission levels. So I have extended this web application "https://ABC.com" to "Internet" zone with Form based authentication with SSL enabled. And done with configurations and all. I am able to search same AD users/groups in people picker.

5â¢ But I was not able to utilize or login with the Roles and Access configured initially for Intranet.

6â¢ There will be only one Active Directory source for both applications

7â¢ My question is, to manage Roles and permission Do I need to add AD users or groups again into sharepoint groups(AD_Viewers->SPViewers and AD_Members->SPMembers) from extended web application https://ABC.com? If so I will see two same group names inside a sharepoint group!! One belongs to Intranet and another Internet. and its difficult to differentiate too. Am I doing right?

8â¢ I want AD users or groups to be added to site at one time only. Means, I want to manage users, groups, permissions for Intranet application and that should automatically reflect for Extended Internet application. Is this possible? In the above case if in future I want to add a user to site, I should add user to http://ABC.com and again to extended https://ABC.com.

9â¢ Also, Can I use Windows authentication in extended web application instead of FBA so that I dont need to manage users and group again in extended web app?

Go4Sharepoint, is a Microsoft Featured Community.
Microsoft, Windows, Sharepoint, Sharepoint logo, Windows logo, etc are trademarks of the Microsoft Corporation.
All product names, logos, copyrights, and trademarks mentioned are acknowledged as the registered intellectual property of their respective owners. This site is not in any way affiliated with, nor has it been authorized, sponsored, or otherwise approved by, Microsoft Corporation.